1 to 25 of 56 Permanent Threat Modelling Jobs in London

Senior Cyber Security Engineer

Hiring Organisation
Financial Times
Location
Greater London, United Kingdom
Employment Type
Full Time
misconfiguration management so that findings are actionable, low-noise and owned by the right teams. Day to day, you’ll run practical threat-modelling sessions, review application and cloud designs, improve security playbooks, support vulnerability and misconfiguration remediation, and build automation that reduces toil. We’re looking … misconfiguration & vulnerability management: experience identifying and reducing infrastructure-as-code and AWS vulnerabilities & misconfigurations at scale through pragmatic guardrails, tooling and clear remediation paths. Threat modelling: confidence running lightweight, practical threat-modelling sessions that lead to useful engineering decisions and risk reduction. CI/ ...

Security Architect

Hiring Organisation
Triad Group PLC
Location
London, United Kingdom
Employment Type
Permanent, Work From Home
Salary
£75,000
play a critical role in designing, assuring, and delivering secure solutions across our client engagements. You will champion Secure by Design principles and lead threat modelling activities to ensure risks are identified and mitigated early in the lifecycle. Working closely with stakeholders, you will define security architectures, ensure … Design - Embed security into every stage of the solution lifecycle, ensuring systems are designed with security controls from the outset rather than retrofitted. Threat Modelling - Lead and facilitate threat modelling exercises (e.g. STRIDE), identifying vulnerabilities and defining mitigations early in delivery Risk Assessment - Identify, assess ...

Cyber Security Engineer

Hiring Organisation
Financial Times
Location
Greater London, United Kingdom
Employment Type
Full Time
coding guidance so that security findings are clear, actionable and owned by the right teams. You’ll work closely with engineers to support practical threat modelling, triage application vulnerabilities, improve security playbooks and help teams remediate issues in a pragmatic way. You do not need … code security awareness: familiarity with security tooling in development workflows, such as SAST, software composition analysis, secret scanning or repository security controls. Threat modelling awareness: experience participating in, supporting or facilitating lightweight threat-modelling sessions for applications, services or new features. Automation mindset: ability to write ...

Head of Product Security - CISO function - BPL

Hiring Organisation
Jobleads-UK
Location
Greater London, England, United Kingdom
Responsibilities Own and drive the shift‐left security programme, ensuring security is integrated into the earliest stages of the software development lifecycle through threat modelling, secure design patterns, and automated tooling. Manage the security champions programme, recruiting, training, and supporting champions across all product squads. Own the developer … publish the security engagement model for product and engineering teams, including trigger points (new service, new integration, pre‐release), SLAs and escalation paths. Oversee threat modelling for new services and major changes, ensuring threat models are completed before development progresses beyond initial design. Own the security sign ...

Security Architect

Hiring Organisation
Searchability NS&D
Location
City of London, London, United Kingdom
Lead technical security design across infrastructure, cloud and application environments Collaborate with SMEs across Identity, Security Testing and Privacy Conduct risk assessments and support threat modelling activities Provide clear justification of design decisions to both technical and non-technical stakeholders Ensure alignment to industry standards and government security … Understanding of network security, encryption, authentication and access control Experience with security tooling such as SIEM, IDS, firewalls and vulnerability assessment tools Knowledge of threat modelling and risk assessment TO BE CONSIDERED: Please either apply through this advert or emailing me directly via robin.muirhead@searchability.com. For further information ...

Director, Security Engineering & Operations

Hiring Organisation
Jobleads-UK
Location
Greater London, England, United Kingdom
technology teams. Set and direct a secure SDLC strategy that engineers engage with, coaching and mentoring our application security engineer with running our threat modelling program, embedding security in CI/CD, and iteratively improving our vulnerability management processes. Partner with engineering leadership to ensure risk‐driven supply … with our CISO to shape and implement an AI security posture that is embedded in strong security foundations, helping us stay ahead of the threat landscape rather than reacting to it. Detection, Response & SOC Partnership Own the strategic relationship with our 24/7 outsourced SOC holding them ...

Security Architect

Hiring Organisation
GUARDIAN NEWS AND MEDIA
Location
London, UK
Employment Type
Full-time
oversight for business, technology, and transformation initiatives. Review solution, application, infrastructure, and cloud designs to ensure security requirements are incorporated from the outset. Conduct threat modelling, security risk assessments, and architecture reviews to identify and mitigate security risks. Collaborate with engineering, infrastructure, product, and business teams to embed … Google Cloud Platform. Knowledge of industry security frameworks and standards, including ISO 27001, NIST, CIS Controls, and OWASP. Experience conducting security architecture reviews, threat modelling, and risk assessments. Strong understanding of identity and access management, network security, encryption, vulnerability management, and security monitoring technologies. Ability to balance security ...

Security Solutions Architect

Hiring Organisation
Huxley Associates
Location
City of London, London, United Kingdom
Employment Type
Permanent
design, scalable, and aligned to business and regulatory requirements. Working closely with architecture, engineering, and delivery teams, you will produce high-level designs, conduct threat modelling and risk assessments, and provide architectural leadership throughout project lifecycles. Key Responsibilities Develop high-level security architecture and solution designs for enterprise … technology initiatives. Evaluate emerging technologies and security tooling, providing recommendations and business justification. Conduct threat modelling, security risk assessments, and secure-by-design reviews. Define security controls, network architectures, and data flow models for internal and external integrations. Provide technical guidance to engineering, testing, and delivery teams during ...

Security Solutions Architect

Hiring Organisation
Huxley Associates
Location
City of London, London, United Kingdom
Employment Type
Permanent
Salary
£110000 - £130000/annum + Bonus & Benefits Package
design, scalable, and aligned to business and regulatory requirements. Working closely with architecture, engineering, and delivery teams, you will produce high-level designs, conduct threat modelling and risk assessments, and provide architectural leadership throughout project lifecycles. Key Responsibilities Develop high-level security architecture and solution designs for enterprise … technology initiatives. Evaluate emerging technologies and security tooling, providing recommendations and business justification. Conduct threat modelling, security risk assessments, and secure-by-design reviews. Define security controls, network architectures, and data flow models for internal and external integrations. Provide technical guidance to engineering, testing, and delivery teams during ...

Staff Security Engineer

Hiring Organisation
Data Idols
Location
London, Farringdon, United Kingdom
Employment Type
Permanent
Salary
£120000 - £150000/annum
secure-by-design culture across the business. Key responsibilities include: Driving application and product security initiatives across multiple engineering teams Conducting security reviews, threat modelling and risk assessments Implementing and improving vulnerability management processes Embedding security tooling into CI/CD pipelines and development workflows Partnering with developers … software development practices Experience working closely with software engineering teams Hands-on experience securing cloud environments (AWS, GCP or Azure) Experience with vulnerability management, threat modelling and security reviews Knowledge of CI/CD security and modern development practices Excellent stakeholder management and communication skills Eligibility Please note ...

Staff Software Security Engineer

Hiring Organisation
Data Idols
Location
London, Farringdon, United Kingdom
Employment Type
Permanent
Salary
£120000 - £150000/annum
secure-by-design culture across the business. Key responsibilities include: Driving application and product security initiatives across multiple engineering teams Conducting security reviews, threat modelling and risk assessments Implementing and improving vulnerability management processes Embedding security tooling into CI/CD pipelines and development workflows Partnering with developers … software development practices Experience working closely with software engineering teams Hands-on experience securing cloud environments (AWS, GCP or Azure) Experience with vulnerability management, threat modelling and security reviews Knowledge of CI/CD security and modern development practices Excellent stakeholder management and communication skills Eligibility Please note ...

Lead Software Security Engineer

Hiring Organisation
Data Idols
Location
London, Farringdon, United Kingdom
Employment Type
Permanent
Salary
£120000 - £150000/annum
secure-by-design culture across the business. Key responsibilities include: Driving application and product security initiatives across multiple engineering teams Conducting security reviews, threat modelling and risk assessments Implementing and improving vulnerability management processes Embedding security tooling into CI/CD pipelines and development workflows Partnering with developers … software development practices Experience working closely with software engineering teams Hands-on experience securing cloud environments (AWS, GCP or Azure) Experience with vulnerability management, threat modelling and security reviews Knowledge of CI/CD security and modern development practices Excellent stakeholder management and communication skills Eligibility Please note ...

Senior Technical Security Risk Consultant

Hiring Organisation
Sanderson Government and Defence
Location
London, United Kingdom
Employment Type
Permanent, Work From Home
Salary
£80,000
frameworks including ISO 27005 and NIST RMF Lead risk identification, assessment and treatment across applications, infrastructure and digital services Facilitate structured risk workshops and threat modelling sessions Assess solution architectures to identify security risks and control gaps Review and interpret IT Health Check outputs and define clear remediation … defence Proven ability to engage senior stakeholders and influence decisions Ability to translate technical findings into clear, actionable risk outcomes Confident leading risk workshops, threat modelling and control assessments Experience working within Agile delivery environments Strong analytical capability and sound judgement Any candidates must have an active ...

Senior Application Security Engineer - DevSecOps & Cloud Security

Hiring Organisation
Additional Resources
Location
London, United Kingdom
Employment Type
Permanent
Salary
£70000 - £80000/annum
service documentation. Supporting development teams with the adoption and integration of security tooling and best practices. Contributing to wider cyber security initiatives, including threat modelling and compliance activities. What we are looking for: Previously worked as a Senior Application Security Engineer, Lead Application Security Engineer, Principal Application Security … such as GitHub and GitHub Actions Highly skilled in Terraform and Python Strong understanding of Azure security controls and cloud security governance Experience with threat modelling in software engineering contexts Knowledge of ISO 27001 and its relevance to secure engineering Familiar with Agile and DevSecOps methodologies Eligible ...

Cloud Security Consultant

Hiring Organisation
83zero Limited
Location
City of London, London, United Kingdom
Employment Type
Permanent, Work From Home
governance models Supporting the design and deployment of secure cloud infrastructure Embedding security throughout the cloud lifecycle using Secure by Design principles Conducting threat modelling and architecture reviews Working with cross-functional teams to integrate secure cloud solutions across hybrid IT environments Implementing security automation, orchestration and DevSecOps … Google Cloud Platform (GCP) Secure cloud governance and operating models DevSecOps, Infrastructure as Code (IaC) and CI/CD security Zero Trust security principles Threat modelling and security architecture reviews Cloud networking, identity and access management, application and data security Security automation and orchestration Relevant cloud security certifications ...

Cloud Security Consultant

Hiring Organisation
83zero Ltd
Location
London, South East, England, United Kingdom
Employment Type
Full-Time
Salary
£80,000 - £100,000 per annum
governance models Supporting the design and deployment of secure cloud infrastructure Embedding security throughout the cloud lifecycle using Secure by Design principles Conducting threat modelling and architecture reviews Working with cross-functional teams to integrate secure cloud solutions across hybrid IT environments Implementing security automation, orchestration and DevSecOps … Google Cloud Platform (GCP) Secure cloud governance and operating models DevSecOps, Infrastructure as Code (IaC) and CI/CD security Zero Trust security principles Threat modelling and security architecture reviews Cloud networking, identity and access management, application and data security Security automation and orchestration Relevant cloud security certifications ...

AWS Security Lead

Hiring Organisation
Anson McCade
Location
London Area, United Kingdom
cloud architectures across complex enterprise environments. Define cloud security patterns, standards and best practices. Champion Security by Design throughout the software delivery lifecycle. Conduct threat modelling, risk assessments and security architecture reviews. Work closely with solution architects, engineering teams and security specialists to deliver secure cloud platforms. Drive … Experience with Infrastructure as Code using Terraform and/or CloudFormation. Solid understanding of cloud networking, identity, encryption and Zero Trust principles. Experience performing threat modelling and cloud risk assessments. Knowledge of security frameworks such as NIST, ISO 27001, CIS and GDPR. Excellent stakeholder engagement and communication skills. ...

Application Security Engineering Manager

Hiring Organisation
Jobleads-UK
Location
Greater London, England, United Kingdom
earn their trust and enable their best work, you need to be genuinely close to the craft — able to engage at depth on threat modelling, agentic security tooling, SDLC design, and application risk. You’ll also own AppSec strategy and be accountable for how the function scales alongside … engineering context into a clear, prioritised programme of work with measurable outcomes. Be a credible technical partner to your team — engage substantively on threat models, security architecture, agentic tooling design, and risk decisions, and be willing to get into the details when it matters. Define and maintain the team ...

IT Security Architect

Hiring Organisation
ARC IT Recruitment
Location
London, United Kingdom
Employment Type
Permanent
Salary
GBP Annual
real scope to shape how security architecture is delivered across the business. The role You will conduct security design reviews end to end, perform threat modelling, author security standards and patterns, and provide architecture consultancy to project teams across the business. You will build deep knowledge … Solid IAM background covering federation, SSO, MFA, and privileged access Experience in a regulated environment, either financial services or consultancy with FS clients Proven threat modelling and security design review experience, with the ability to write clear security standards Strong differentiators: Awareness of AI and LLM security risks ...

Microsoft AI Engineer / Azure Artificial Intelligence Engineer

Hiring Organisation
Huxley Associates
Location
City of London, London, United Kingdom
Employment Type
Permanent
Salary
£50000 - £90000/annum
Governance team The AI Security Engineer is responsible for securing AI platforms and systems against adversarial threats. The role focuses on technical security controls, threat modelling, red teaming, and continuous monitoring of AI systems. Role details Title: AI Engineer/Azure Artificial Intelligence Engineer Location: can be either … programming experience (Python, C#, or Java) Your role will focus on:- Design and implement security controls for AI and LLM systems Perform AI-specific threat modelling and risk analysis Lead red team and blue team testing of AI platforms This is a really interesting role and a great ...

Cyber Security Engineer - Assistant Vice President

Hiring Organisation
Mizuho
Location
Greater London, United Kingdom
Employment Type
Full Time
Profile Summary Seeking security engineer to join our Proactive Security team, this role will focus on the development of security technology stack to ensure threat mitigation is in place through offensive and preventive measures. Duties and Responsibilities Threat Modelling & Risk Analysis: Develop and maintain threat models … tooling integration and orchestration. Develop and implementation of SOAR capabilities that aligns with existing technology stack. Experience with KMS systems and methodologies. Identity based threat detection and prevention. Privileged Access and Session Management SIEM Management: Design, implement, and maintain of workspaces, including data connectors, Logic App, Function App, analytics ...

Threat Detection Engineer

Hiring Organisation
Barclay Simpson
Location
London Area, United Kingdom
Threat Detection Engineer required for global legal firm. You will be responsible for advancing the maturity of the SIEM platform alongside other strategic security solutions, working closely with internal teams to improve the organisation's overall security posture. This position focuses on onboarding new log sources, optimising data pipelines … internal teams and vendors to ensure reliable, high-quality telemetry Detection Engineering Design and implement detection use cases aligned to MITRE ATT&CK and threat intelligence Build and tune correlation rules, anomaly detections, dashboards, and alerting workflows Continuously refine detections to reduce false positives and improve effectiveness SOC & Incident ...

Cloud Security Engineer

Hiring Organisation
Experis
Location
London, UK
DevOps, and operational teams, you will contribute to cloud architecture designs, automate security remediation processes, and provide proactive insights into cloud risks, vulnerabilities, and threat mitigation strategies. You will leverage your expertise in cloud security, infrastructure as code, CI/CD pipelines, containerisation, and governance frameworks to ensure that … software development lifecycle practices. Identify, assess, and mitigate cloud security risks, vulnerabilities, and compliance gaps. Contribute to cloud architecture reviews, security assessments, and threat modelling activities. Work with security tooling and SIEM platforms to improve visibility, detection, and response capabilities. Support incident, problem, and change management processes while ...

Consultant Security

Hiring Organisation
Colt Technology Services UK
Location
London, United Kingdom
Employment Type
Permanent, Work From Home
troubleshooting. Governance, Risk and Compliance Apply GRC principles across designs and deployments. Review and improve customer security policies and standards. Perform risk assessments, threat modelling, and compliance gap analysis. Advise on ISO 27001, NIST, PCI DSS, and GDPR. Threat and Vulnerability Management Interpret threat intelligence ...

Zero Trust Security Architect

Hiring Organisation
Anson Mccade
Location
City of London, London, United Kingdom
Employment Type
Permanent, Work From Home
CASB, FWaaS, segmentation, and secure web access • Integrate Zero Trust solutions with identity providers, SIEM/SOAR platforms, and endpoint security tooling • Conduct threat modelling, risk assessments, and security architecture reviews • Troubleshoot complex deployment and access issues across enterprise environments • Provide technical leadership and guidance across security ...